diff options
-rw-r--r-- | docker-compose.yml | 5 | ||||
-rw-r--r-- | proxy.Dockerfile | 5 | ||||
-rw-r--r-- | volumes/proxy/traefik.toml | 2 |
3 files changed, 10 insertions, 2 deletions
diff --git a/docker-compose.yml b/docker-compose.yml index cf641da..2c8f43f 100644 --- a/docker-compose.yml +++ b/docker-compose.yml @@ -10,6 +10,7 @@ services: - DOCKER_STEPCA_INIT_NAME=Letterbook Sandcastles - DOCKER_STEPCA_INIT_DNS_NAMES=root-ca.castle,root-ca,localhost - DOCKER_STEPCA_INIT_REMOTE_MANAGEMENT=true + - DOCKER_STEPCA_INIT_ACME=true ports: - "9000:9000" networks: @@ -18,7 +19,9 @@ services: - root-ca.castle proxy: - image: traefik:v2.5 + image: traefik-trust-root-ca + build: + dockerfile: proxy.Dockerfile volumes: - /var/run/docker.sock:/var/run/docker.sock - ./volumes/proxy/:/etc/traefik/ diff --git a/proxy.Dockerfile b/proxy.Dockerfile new file mode 100644 index 0000000..04f09cb --- /dev/null +++ b/proxy.Dockerfile @@ -0,0 +1,5 @@ +FROM traefik:v2.5 + +COPY volumes/root-ca/certs/root_ca.crt /usr/local/share/ca-certificates/root_ca.crt + +RUN cat /usr/local/share/ca-certificates/root_ca.crt >> /etc/ssl/certs/ca-certificates.crt
\ No newline at end of file diff --git a/volumes/proxy/traefik.toml b/volumes/proxy/traefik.toml index 22ec105..0c3f0a1 100644 --- a/volumes/proxy/traefik.toml +++ b/volumes/proxy/traefik.toml @@ -11,7 +11,7 @@ dashboard = true [certificatesResolvers.smallstep.acme] - caServer = "https://root-ca.castle:9000" # acme-staging-v02.api.letsencrypt.org/directory" + caServer = "https://root-ca.castle:9000/acme/acme/directory" # acme-staging-v02.api.letsencrypt.org/directory" storage = "acme.json" [certificatesResolvers.smallstep.acme.httpChallenge] entryPoint = "web" |